Stack Overflow
Stack Overflow

Questions tagged [claims-based-identity]

Application model for presenting an identity to a claims aware application. This identity contains claim elements, such as email address or username, in a secure package from a trusted source. This model separates the application from the authentication mechanism.

Resources

Wikipedia Entry - Claims-based identity

MSDN Article - Exploring Claims-Based Identity by Kieth Brown

1595 questions
0
votes
1 answer

Where is the ClaimsPrincipal "User" created in MVC, visual studio 2015?

I have created an MVC Project, but implemented my own login functionality. In _LoginPartial.cshtml there is usage of the ClaimsPrincipal "User" methods such as User.IsSignedIn(). when i use my login function I want to update the ClaimsPrincipal…
Abigail
  • 51
  • 1
  • 5
0
votes
1 answer

ClaimType to store avatar URI

I use Facebook/Google authentication in my application and once authenticated I create my own cookie. What ClaimType is appropriate for storing user's avatar URI?
Sam
  • 26,817
  • 58
  • 206
  • 383
0
votes
2 answers

Windows Identity Foundation STS: other types of requests?

I'm using WIF. I developed an STS that works well. The STS itself performs the login (basically using the pre-rolled code that comes with Microsoft MVC). So far we have two relying parties that can use the encrypted identity cookie just fine. Here's…
rdgWarren
  • 87
  • 1
  • 8
0
votes
1 answer

OWIN with Identity 2 - avoid regularly hitting the database for common objects

I have just taken the plunge and started to learn the OWIN style of authorizing users into MVC applications. One issue I'm having is storing objects since the move away from session objects and into claims. Traditionally what I would do is…
Laurence Frost
  • 2,759
  • 3
  • 28
  • 45
0
votes
1 answer

Persist claims added after user is authenticated by Identity Server

Is there a way I can persist my application specific claims added to the identity after it gets authenticated by Identity Server. I don't want to load the claims from database for the user and add everytime I want to access my API.
Sabby62
  • 1,707
  • 3
  • 24
  • 37
0
votes
1 answer

ADFS multiple relying party and claim rules to fall back between them

1) I've an Active Directory, that knows 100% users and IdP that knows let's say 50% of them. I would like ADFS first check if user exists in IdP(RP0) and based on response (Authorized, Not Authorized, Doesn't exist) will query LDAP(RP1) (Active…
Neftanic
  • 930
  • 9
  • 17
0
votes
1 answer

.NET ClaimsIdentity to JWT?

I'm tying to determine the best practice for converting the Claims list in the .NET ClaimsIdentity to a JSON Web Token (https://github.com/jwt-dotnet/jwt). If I try to use the Claims list directly in JsonWebToken.Encode() I get a circular reference…
Josh Russo
  • 3,080
  • 2
  • 41
  • 62
0
votes
1 answer

how to get isAuthenticated working in client mvc app ,in cross platform authentication and autherization(web api)

I am using mvc application and web api 2 with asp.net identity 2. my client mvc application working with tokens, it gives an api call on login submit button then web api service returns a token and user claim (i.e username) my question are…
Br Bhardwaj
  • 31
  • 4
0
votes
1 answer

Identity Server 3 implicit grant, role based authorization

I have set up the Identity Server 3 with Membership reboot database as my authorization server and have also developed a Web Api project which will be accessed by a javascript web app. Using the implicit flow, the client is able to log in and obtain…
Behrooz
  • 1,895
  • 4
  • 31
  • 47
0
votes
1 answer

WSO2 Identity Server - Cannot Use Dialect I defined in Service Provider's Claim Configuration

I created my own dialect using the manaement console Configure-->Claim Management. After doing this, I wanted to configure my Service Provider to be associated with these claims, so I edited my SP and went to the Claim Configuration section. The…
jeremy simon
  • 601
  • 1
  • 8
  • 19
0
votes
0 answers

A Claim of type 'Role' is too abstract

I have built a web api with asp.net identity and bearer token auth. I understand that roles outcome is true/false and a claim is a finer grained statement about an user. But a claim of type role is just something abstract just a name like…
Elisabeth
  • 20,496
  • 52
  • 200
  • 321
0
votes
1 answer

Claims based authentication for system to system web services

Im doing some initial thinking about the development of a web service between systems in 2 separate organisations. (WCF/WIF would be used for the dev.) ADFS is available to use at both ends. Im curious to understand thoughts around whether using…
Developr
  • 447
  • 8
  • 21
0
votes
1 answer

ASP.NET Identity - AuthenticationManager.SignOut not working

I am trying to logout my users when a JWT token is expired. But for some reason, the ClaimsPrincipal still exists after I Signout. For eg: Request.IsAuthenticated is always true even after I singed out. I am signing out of all the available…
udayr
  • 63
  • 11
0
votes
0 answers

ClaimsAuthorizationManager not on System.Security.Claims

I'm trying to add claim auth on my mvc project but I can't implement the ClaimsAuthorizationManager. I saw in a lot of tutorials on the web that you need to create a custom authorization manager but my VS don't seem to find the…
Diuter
  • 85
  • 6
0
votes
2 answers

How can Views and ViewModels utilize claims-based authorization in MVC 5?

In my project I have implemented ASP.NET Identity 2.x with claims based authorization plus authentication. I have added added support for a claims authorization attribute as described here. Here are the claims I'va come up with that would…
John
  • 3,591
  • 8
  • 44
  • 72
1 2 3
99 100